Job Description:
Build and lead effective and intelligence-led 24x7 Cyber Security Operations function.
The focus is on aligning Cloud Security A..
Job Description:
Build and lead effective and intelligence-led 24x7 Cyber Security Operations function.
The focus is on aligning Cloud Security Architecture, Zero Trust along the lines of security technology, strategy, and policies.
Define, implement, assess, and maintain controls necessary to protect software and applications in accordance with security requirements.
Define, implement, assess, and maintain controls necessary to protect networks, hardware, systems, and mobile devices in accordance with security requirements (This includes, for example, intrusion prevention and detection controls, firewall).
Secure lifecycle: ensure that security requirements are adequately addressed throughout the development and acquisition lifecycles for all assets.
Manage emerging technology areas such as: Cloud Service, Provider, and Platform Security (SaaS, PaaS & IaaS), Application Security (Secure SDLC, DevSecOps, and security Automation).
Security architecture: Develop and maintain an enterprise security architecture.
Lead architecture design reviews to evaluate security controls and identify opportunities to enhance the security posture.
Manage day to day security operations and team.
Responsible for Security operations team, tools and licenses.
Manage and engage with Security vendors (Cyberark, Zscaler, Leapworks, Tenable, MS defender, PaloAlto Firewall, IDS/IPS etc).
Accountable for Regulatory Compliance / Audit responses in terms of Information & Cyber security operations topics.
Provide daily, weekly, and monthly security dashboard / reports to CISO.
Act as Technical Information Security Officer (TISO) for Seviora Group and its subsidiarity companies.
Manage DLP, AIP and data classification projects and implementations.
Provide Cyber Risk Management for the company
Requirement:
15-20 years of Cybersecurity experience
Must have led large teams across geographies
CEH certified
Relevant certifications in networking or cyber security, e.g. CISSP, CISM, CISA, CRSIS preferred
Strong experience with DevSecOps methodologies and processes
Strong experience in security architecture of cloud native applications
Experience in providing security advisory and consultancy on application and services, including the design, development, implementation and/or management of the system
Experience with security tools and technologies, such as Security Information and Events Management, Data Loss Prevention, Database Activity Monitoring, Data Security and Protection, Privileged Access Management, File Integrity Monitoring, Web Application Firewall, Intrusion Prevent etc
